Cloud Antivirus Security Technology Jeopardized by Computer Trojan, Claims Microsoft
According to software giant, Microsoft, miscreants (cybercriminals) have released a computer Trojan specially designed to disable cloud-based anti-virus security defenses, reported the theregister.co.uk on January 20, 2011.
Microsoft researchers first marked the Bohu Trojan in China while they were scrutinizing reputed products for avoiding virus.
Microsoft claims that the deceptive looks of the Bohu Trojan instigate netizens to download it as it seems to be a video player. But after immediate entry, the malware interrupts and blocks all kind of traffic visiting websites attacked by virus such as rsup10.rising.com.cn and down.360safe.com.
Jingli Li and Zhitao Zhou, Researchers at Microsoft explains the functioning of detecting using cloud-based technology, which sends hazardous data to the server for carrying out back process analysis and warns users with removal information, reports eweek on January 20, 2011.
The time taken to accomplish the procedure varies and it eradicates a system devoid of malware, which were otherwise impossible through the traditional approach of on-the-box signature. Bohu attempts at severing any connection involving cloud client and the server and persistently change file content with an intention to avoid scanning performed by the cloud-based technology.
Moreover, it has been held by the researchers that immediately after destroying a PC, the Bohu Trojan generates and installs several files. A Network Driver Interface Specification (NDIS) filter is also installed that amend the registration and encryption of scrap data indiscriminately at the main components of the payload for avoiding detection through hash-based technology employed by technologies for preventing virus run on the basis of cloud.
Microsoft also revealed Bohu to be an integral part showing foremost signs of malicious software that exclusively aims cloud-based technology for protecting systems from virus.
According to Alan Bentley, Senior Vice-President of security firm Lumension the protection of information in the cloud was jeopardized for a while, reports computerweekly on January 20, 2011. This cyber attack will instigate safety concerns associated with virtual storing of information in future.
Bentley asserted that a diverse technique has to be considered for protecting data as cybercriminals have now started attacking security defenses.
Anti-virus solutions have repeatedly failed to keep up the hope. To avoid security threats as provided by Tojan Bohu, a unique and an intelligent technique has to undertaken. Organizations can ensure their protection only when they allow competent code that held enough worth for entering a network.
Related article: Child Porn Lands Man in Jail
» SPAMfighter News - 29-01-2011